Reddit has informed a large number of users about a “security concern” that requires them to reset their passwords. The security concern refers to unusual user behavior spotted by Reddit admins, which indicated a credential-stuffing attack affecting many accounts. One Reddit admin explained that the company suspects threat actors were
The security of connected devices, or the lack thereof rather, is one of the biggest cybersecurity issues right now. Gartner predicts the Internet of Things (IoT) will consist of 25 billion devices by 2021, most of which might be very easy to hack, if current trends are any indication. According
The Department of Homeland Security has issued an analytic graphic detailing how it expects cyber attacks against the Emergency Services Sector could be conducted.
The current US government shutdown caused by a conflict over the budget, and in particular by president Trump’s refusal to approve legislation to fund the government if it does not include $5 billion for a border wall with Mexico, is having an immediate negative impact on the country’s cyber defenses. However, the
FireEye has discovered a global DNS hijacking campaign targeting governments and businesses, including companies vital to telecommunications and Internet infrastructure. The cybersecurity firm says it has found evidence indicating that the attacks may be carried out by hackers working for the Iranian government. The attackers attempt to gain access to targeted networks
A global Pew Research Center survey shows that cyberattacks are increasingly considered a normal part of modern life. The survey was conducted among over 27,000 respondents from 26 different countries. Overall. 74% of respondents expected cyberattacks to impact national security, 69% said the same about damage to public infrastructure, while
Cisco has plugged 18 vulnerabilities, including two flaws that could allow threat actors to carry out denial of service (DoS) attacks on affected machines by means of sending an email. One of the DoS bugs was rated as critical, and the other as “high” in terms of severity. The 16 remaining
American home goods manufacturer OXO International has suffered a data breach involving multiple windows of compromise between June 2017 and October 2018. The breach was most likely the result of a Magecart attack. Magecart refers to various cybercriminal groups known for attacking e-commerce sites and installing digital credit card skimmers onto compromised checkout
Researchers at cybersecurity firm Proofpoint have discovered a new attack campaign by TA505, a notorious cybercrime group responsible for various major attacks in recent years, including the Locky ransomware campaign. The campaign combines two types of malware, ServHelper and FlawedGrace. ServHelper is the newest of the two, being discovered only in November of last year. It installs
How can you use HACKthinking to solve complex problems or evolve or develop a disruptive solution.